CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1522
https://notcve.org/view.php?id=CVE-2013-1522
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote attackers to affect integrity via unknown vectors related to Content Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1 y v11.1.1.6.0 permite a atacantes remotos afectar la integridad mediante vectores desconocidos relacionados con Content Server. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 10.0EPSS: 96%CPEs: 2EXPL: 1CVE-2013-1559 – Oracle WebCenter Content CheckOutAndOpen.dll ActiveX coao/openWebdav Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1559
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote authenticated users to affect availability via unknown vectors related to Content Server. Vulnerabilidad no especificada en el componente Oracle WebCenter Content en Oracle Fusion Middleware v10.1.3.5.1 y v11.1.1.6.0 permite a usuarios remotos autenticados afectar a la disponibilidad a través de vectores desconocidos relacionados con Content Server. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle WebCenter Content. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the CheckOutAndOpen.dll ActiveX control's coao and openWebdav methods. By specifying a carefully constructed path an attacker can force the contents of the file to be passed to ShellExecuteExW. • https://www.exploit-db.com/exploits/25979 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 3.5EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1503
https://notcve.org/view.php?id=CVE-2013-1503
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1 and 11.1.1.6.0 allows remote authenticated users to affect integrity via unknown vectors related to Content Server. Vulnerabilidad sin especificar en el componente Oracle WebCenter Content en Oracle Fusion Middleware 10.1.3.5.1 y 11.1.1.6.0, permite a usuarios autenticados remotamente comprometer la integridad a través de vectores relacionados con Content Server. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2013-1504
https://notcve.org/view.php?id=CVE-2013-1504
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2, 10.3.5, 10.3.6, and 12.1.1 allows remote attackers to affect integrity via unknown vectors related to WebLogic Console, a different vulnerability than CVE-2013-2390. Vulnerabilidad no especificada en el componente de Oracle WebLogic Server component en Oracle Fusion Middleware v10.0.2, v10.3.5, v10.3.6, y v12.1.1 permite a atacantes remotos afectar la integridad a través de vectores desconocidos relacionados con WebLogic Console, una vulnerabilidad diferente a CVE-2013-2390. • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •
CVSS: 4.0EPSS: 37%CPEs: 3EXPL: 1CVE-2013-1509 – Oracle WebCenter Sites Satellite Server - HTTP Header Injection
https://notcve.org/view.php?id=CVE-2013-1509
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 allows remote authenticated users to affect integrity via unknown vectors related to WebCenter Sites. Vulnerabilidad no especificada en el componente Oracle WebCenter Sites en Oracle Fusion Middleware v7.6.2, v11.1.1.6.0, y v11.1.1.6.1 permite a usuarios remotos autenticados afectar la integridad mediante vectores desconocidos relacionados con WebCenter Sites. Oracle WebCenter Sites Satellite Server versions 7.6.0 Patch1, 7.6.2, 11.1.1.6.0, and 11.1.1.6.1 suffer from HTTP header injection and cache poisoning vulnerabilities. • https://www.exploit-db.com/exploits/24964 http://archives.neohapsis.com/archives/bugtraq/2013-04/0189.html http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html •